Daily NCSC-FI news followup 2021-09-25

Onko kiinalainen puhelin vaarallinen? Näin kommentoivat viran­omainen ja tieto­turva-asian­tuntija

www.is.fi/digitoday/tietoturva/art-2000008283666.html Liettualaisten löydökset herättivät pelkoa kiinalaispuhelimiin. Asiantuntijoiden mukaan kyse ei ole yhteen maahan liittyvästä ongelmasta. Kuluttajan asema on kuitenkin vaikea.

VMware vCenter Server Vulnerability CVE-2021-22005 Under Active Exploit

us-cert.cisa.gov/ncas/current-activity/2021/09/24/vmware-vcenter-server-vulnerability-cve-2021-22005-under-active On September 21, 2021, VMware disclosed that its vCenter Server is affected by an arbitrary file upload vulnerabilityCVE-2021-22005in the Analytics service. A malicious cyber actor with network access to port 443 can exploit this vulnerability to execute code on vCenter Server.

FBI decision to withhold Kaseya ransomware decryption keys stirs debate

www.zdnet.com/article/fbi-decision-to-withhold-kaseya-ransomware-decryption-keys-stirs-debate/ Many security experts defended the FBI’s decision to leave Kaseya victims struggling with ransomware infections for weeks.

United Health Centers ransomware attack claimed by Vice Society

www.bleepingcomputer.com/news/security/united-health-centers-ransomware-attack-claimed-by-vice-society/ California-based United Health Centers suffered a ransomware attack that reportedly disrupted all of their locations and resulted in patient data theft.

Russian missile fuel maker targeted with recent Office zero-day

therecord.media/russian-missile-fuel-maker-targeted-with-recent-office-zero-day/ Russian organizations, including a major defense contractor, have been targeted in a suspected cyber-espionage operation that is abusing a recently disclosed Office zero-day.

Large-Scale Phishing-as-a-Service Operation Exposed

threatpost.com/phishing-as-a-service-exposed/174932/ Discovery of BulletProofLinkwhich provides phishing kits, email templates, hosting and other toolssheds light on how wannabe cybercriminals can get into the business.

A New Bug in Microsoft Windows Could Let Hackers Easily Install a Rootkit

thehackernews.com/2021/09/a-new-bug-in-microsoft-windows-could.html Security researchers have disclosed an unpatched weakness in Microsoft Windows Platform Binary Table (WPBT) affecting all Windows-based devices since Windows 8 that could be potentially exploited to install a rootkit and compromise the integrity of devices.

Bitcoin.org hackers steal $17,000 in ‘double your cash’ scam

www.bleepingcomputer.com/news/security/bitcoinorg-hackers-steal-17-000-in-double-your-cash-scam/ This week, threat actors hijacked Bitcoin.org, the authentic website of the Bitcoin project, and altered its parts to push a cryptocurrency giveaway scam that unfortunately some users fell for.. Although the hack lasted for less than a day, hackers seem to have walked away with a little over $17,000.

Näin EU:n satelliitti­paikannus Galileo tulee käyttöön Suomessa

www.is.fi/digitoday/art-2000008282315.html Galileon viranomaisille tarkoitettu palvelu on määrä ottaa Suomessa käyttöön kolmessa vuodessa.

You might be interested in …

Daily NCSC-FI news followup 2021-07-24

Internet Futures www.ofcom.org.uk/__data/assets/pdf_file/0013/222205/internet-futures.pdf This report should not be seen as an exhaustive list of every innovative technology being developed. Indeed, it can be no more than a sample of the high-quality ongoing research work being conducted in industry and academia. Further, the omission or inclusion of any technology shouldnt be taken as a signal of […]

Read More

Daily NCSC-FI news followup 2019-11-26

The RIPE NCC has run out of IPv4 Addresses www.ripe.net/publications/news/about-ripe-ncc-and-ripe/the-ripe-ncc-has-run-out-of-ipv4-addresses Today, at 15:35 (UTC+1) on 25 November 2019, we made our final /22 IPv4 allocation from the last remaining addresses in our available pool. We have now run out of IPv4 addresses. Stantinko botnet adds cryptomining to its pool of criminal activities www.welivesecurity.com/2019/11/26/stantinko-botnet-adds-cryptomining-criminal-activities/ The operators […]

Read More

Daily NCSC-FI news followup 2020-07-20

Cybersecurity basics more important then ever in the new normal of remote work says Salesforce Chief Trust Officer www.zdnet.com/article/cybersecurity-basics-more-important-then-ever-in-the-new-normal-of-remote-work-says-salesforce-chief-trust-officer/ Jim Alkove, Chief Trust Officer at Salesforce, talks security in the new normal of remote work, cybersecurity best practices, and how security jobs can be a way to increase diversity in IT. BadPower attack corrupts fast […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.